Generating security material

US 8,813,201 B2
Filed: 06/08/2010
Issued: 08/19/2014
Est. Priority Date: 06/24/2009
Status: Active Grant

First Claim

Patent Images

1. A method for establishing a secure, direct, station-to-station communication between a first station and a second station, the method comprising:

creating pair-wise unique material for the first station,wherein the pair-wise unique material is computed as a function of (i) a known shared secret associated with a piconet basic service set control point (PCP), (ii) a first piece of unique data associated with the first station, and (iii) a second piece of unique data associated with the second station;

securely communicating the pair-wise unique material from the first station to the second station, wherein the first station and the second station independently authenticate with the PCP prior to communicating to establish a security association (SA) with the PCP, and wherein the known shared secret is a group transient key (GTK) of the PCP,wherein the first station and the second station are members of a group of stations associated with the PCP, wherein the PCP is an access point and the group of stations are peer devices that are not access points;

communicating, by the first station, directly via peer-to-peer communications with the second station using the pair-wise unique material to secure the peer-to-peer communications;

broadcasting, by the first station, a communication to the group of stations using at least the GTK from the PCP to secure the communication, wherein communicating directly and broadcasting includes communicating without messages transiting the PCP; and

in response to a race condition associated with colliding messages of a four-way handshake between the first station and the second station, selectively resolving the race condition based on a media access control (MAC) address of the first station and a MAC address of the second station or another unique identifier of the first station and the second station.

View all claims

7 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An apparatus and method establish a secure, direct, station-to-station communication between a first station and a second station in a topology (e.g., PBSS) having a central secret holder/provider that allows secure, direct, station-to-station communications and that allows secure station-to-station broadcast communications. The first station and the second station will have previously established a security association (SA) with a topology control point (PCP). The method includes creating pair-wise unique material for the first station. The pair-wise unique material is computed as a function of (i) a known shared secret associated with the PCP, (ii) a first piece of unique data associated with the first station, and (iii) a second piece of unique data associated with the second station. The method includes securely communicating the pair-wise unique material from the first station to the second station.

Citations

11 Claims

1. A method for establishing a secure, direct, station-to-station communication between a first station and a second station, the method comprising:
- creating pair-wise unique material for the first station,wherein the pair-wise unique material is computed as a function of (i) a known shared secret associated with a piconet basic service set control point (PCP), (ii) a first piece of unique data associated with the first station, and (iii) a second piece of unique data associated with the second station;
  
  securely communicating the pair-wise unique material from the first station to the second station, wherein the first station and the second station independently authenticate with the PCP prior to communicating to establish a security association (SA) with the PCP, and wherein the known shared secret is a group transient key (GTK) of the PCP,wherein the first station and the second station are members of a group of stations associated with the PCP, wherein the PCP is an access point and the group of stations are peer devices that are not access points;
  
  communicating, by the first station, directly via peer-to-peer communications with the second station using the pair-wise unique material to secure the peer-to-peer communications;
  
  broadcasting, by the first station, a communication to the group of stations using at least the GTK from the PCP to secure the communication, wherein communicating directly and broadcasting includes communicating without messages transiting the PCP; and
  
  in response to a race condition associated with colliding messages of a four-way handshake between the first station and the second station, selectively resolving the race condition based on a media access control (MAC) address of the first station and a MAC address of the second station or another unique identifier of the first station and the second station.
- View Dependent Claims (2, 3, 4, 5)
- - 2. The method of claim 1, wherein:
    - the known shared secret is the group transient key (GTK) that is derived by the PCP from a master key, the first piece of unique data is the MAC address associated with the first station, or a nonce, and the second piece of unique data is the MAC address associated with the second station or a nonce.
  - 3. The method of claim 2, further comprising using an extensible authentication protocol over local area network (EAPoL) four-way handshake to communicate the first piece of unique data and the second piece of unique data between the first station and the second station.
  - 4. The method of claim 3, further comprising:
    - securing a communication between the first station and the second station using the pair-wise unique material.
  - 5. The method of claim 1, further comprising:
    - creating group-wise security material for the first station that is broadcasting communications, wherein the first station has established an SA with the PCP, and wherein the first station is to securely transmit a message to two or more stations in the group of stations, the group-wise security material being computed as a function of (i) the known shared secret associated with the PCP and (ii) a piece of unique data associated with the first station; and
      
      securely communicating the group-wise security material from the first station to the two or more stations of the group of stations, wherein the first piece of unique data is the MAC address of the first station or a nonce, and wherein the second piece of unique data is the MAC address the second station or a nonce.

6. An apparatus for computing a pair-wise transient key for a first station (S_i) and a second station (S_j) of a piconent basic service set (PBSS), the apparatus comprising:
- pair-wise key logic, including at least hardware, configured to compute a pair-wise transient key as a function of a GTK_PCPthat is a group transient key generated by a PBSS control point (PCP), a Unique_SIthat is information unique to the first station (S_i) and a Unique_SJthat is information unique to the second station (S_j); and
  
  pair-wise communication logic, including at least hardware, configured to securely communicate the pair-wise transient key between the first station and the second station, wherein the first station and the second station independently authenticate with the PCP prior to communicating to establish a security association (SA) with the PCP,wherein the first station and the second station are members of a group of stations associated with the PCP, wherein the PCP is an access point and the group of stations are peer devices that are not access points,wherein the pair-wise communication logic is configured to communicate directly via peer-to-peer communications with the second station using the pair-wise transient key to secure the peer-to-peer communications;
  
  group-wise communication logic configured to broadcast a communication to the group of stations using at least the group transient key from the PCP to secure the communication, wherein the pair wise communication logic and the group-wise communication logic are configured to communicate with stations in the group of stations without communicating via the PCP; and
  
  race logic configured to resolve a first message race condition associated with colliding four-way handshake attempts by the first station and the second station based on a media access control (MAC) address of the first station and a MAC address of the second station.
- View Dependent Claims (7, 8, 9, 10)
- - 7. The apparatus of claim 6, wherein the GTK_PCPis separately provided by the PCP to the first station and the second station, wherein the GTK_PCPis derived by the PCP from a master key, wherein the Unique_Siis the MAC address associated with the first station or a nonce, and wherein the Unique_Sjis the MAC address associated with the second station or a nonce.
  - 8. The apparatus of claim 7, wherein the pair-wise communication logic securely communicates the Unique and the Unique between the first station and the second station using an extensible authentication protocol over local area network (EAPoL) four-way handshake.
  - 9. The apparatus of claim 7, further comprising:
    - computing the pair-wise transient key using additional parameters that are based, at least in part, on beacon information provided by the PCP.
  - 10. The apparatus of claim 6, further comprising:
    - group-wise key logic to compute, for a broadcasting member S_Bof the group of stations, a group-wise transient key (GTK_B), where S_Bhas previously established an SA with the PCP, and where S_Bis to perform a secure, station-to-station communication that does not transit the PCP, where the secure, station-to-station communication involves one or more other members of the group of stations,wherein the GTK_Bis computed according to;
      
      GTK_B=f(GTK_PCP, Unique_SB)wherein GTK_PCPis a group transient key generated by the PCP, andwherein Unique_SBis information unique to S_B; and
      
      group-wise communication logic to securely communicate GTK_Bfrom S_Bto the one or more other members of the group of stations.

11. An apparatus, comprising:
- pair-wise key logic, including at least hardware, configured to create pair-wise unique material for a first station, wherein the first station and a second station have previously established a security association (SA) with a topology control point (PCP),wherein the pair-wise unique material is computed as a function of (i) a known shared secret associated with the PCP, (ii) a first piece of unique data associated with the first station, and (iii) a second piece of unique data associated with the second station;
  
  pair-wise communication logic, including at least hardware, configured to securely communicate the pair-wise unique material from the first station to the second station, wherein the first station and the second station independently authenticate with the PCP prior to communicating to establish the SA, wherein the known shared secret is a group transient key (GTK) of the PCP,wherein the first station and the second station are members of a group of stations associated with the PCP, wherein the PCP is an access point and the group of stations are peer devices that are not access points, andwherein the pair-wise communication logic is configured to communicate directly via peer-to-peer communications with the second station using the pair-wise unique material to secure the peer-to-peer communications;
  
  group-wise communication logic configured to broadcast a communication to the group of stations using at least the group transient key from the PCP to secure the communication, wherein the pair wise communication logic and the group-wise communication logic are configured to communicate with stations in the group of stations without communicating via the PCP; and
  
  race logic configured to resolve a first message race condition associated with colliding four-way handshake attempts by the first station and the second station based on a media access control (MAC) address of the first station and a MAC address of the second station.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Marvell Asia Pte Limited (Marvell Technology Group Limited)
Original Assignee
Marvell World Trade Limited (Marvell Technology Group Limited)
Inventors
Lambert, Paul A., Liu, Yong
Primary Examiner(s)
SHAW, PETER C

Application Number

US12/795,994
Publication Number

US 20100333185A1
Time in Patent Office

1,533 Days
Field of Search

726/6
US Class Current

726/6
CPC Class Codes

H04L 2209/601   Broadcast encryption

H04L 63/062   for key distribution, e.g. ...

H04L 63/065   for group communications cr...

H04L 63/0892   by using authentication-aut...

H04L 9/0833   involving conference or gro...

H04W 12/041   Key generation or derivation

H04W 12/0431   Key distribution or pre-dis...

H04W 84/045   using private Base Stations...

Generating security material

First Claim

7 Assignments

0 Petitions

Accused Products

Abstract

Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Generating security material

First Claim

7 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links